Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2020-24341
HistoryDec 11, 2020 - 10:55 p.m.

CVE-2020-24341

2020-12-1122:55:33
mitre
www.cve.org
4
picotcp
picotcp-ng
tcp input data
data processing function
length validation
tcp packets
out-of-bounds read
data segment
denial-of-service
information leak

AI Score

9.2

Confidence

High

EPSS

0.002

Percentile

59.5%

JSON

An issue was discovered in picoTCP and picoTCP-NG through 1.7.0. The TCP input data processing function in pico_tcp.c does not validate the length of incoming TCP packets, which leads to an out-of-bounds read when assembling received packets into a data segment, eventually causing Denial-of-Service or an information leak.

Related

cve 1
prion 1
nvd 1
osv 1
ics 1
cert 1
cve
cve
CVE-2020-24341
2020-12-11 23:15:14
prion
prion
Design/Logic Flaw
2020-12-11 23:15:00
nvd
nvd
CVE-2020-24341
2020-12-11 23:15:14
osv
osv
CVE-2020-24341
2020-12-11 23:15:14
ics
ics
Multiple Embedded TCP/IP Stacks
2020-12-09 12:00:00
cert
cert
Embedded TCP/IP stacks have memory corruption vulnerabilities
2020-12-08 00:00:00

AI Score

9.2

Confidence

High

EPSS

0.002

Percentile

59.5%

JSON
Related for CVELIST:CVE-2020-24341
cve1prion1nvd1osv1ics1cert1